importing firewall app

fccd725e · Őry Máté · 9fe6fe02 · fccd725e · fccd725e · fccd725e
Commit fccd725e authored Nov 22, 2012 by Őry Máté
Expand all Hide whitespace changes
Inline Side-by-side

Showing with 167 additions and 2 deletions

firewall/admin.py
+21 -0

firewall/fw.py
+0 -0

firewall/models.py
+117 -1

firewall/views.py
+29 -1

No files found.
--- a/firewall/admin.py
+++ b/firewall/admin.py
+from django.contrib import admin
+from teszt.firewall.models import *
+class HostAdmin(admin.ModelAdmin):
+    list_display = ('hostname', 'vlan', 'ipv4', 'ipv6', 'mac', 'owner', 'groups_l', 'rules_l', 'description')
+    ordering = ('-hostname',)
+class VlanAdmin(admin.ModelAdmin):
+    list_display = ('vid', 'name', 'en_dst_vlan', 'ipv4', 'net_ipv4', 'ipv6', 'net_ipv6', 'description', 'domain')
+    ordering = ('-vid',)
+class RuleAdmin(admin.ModelAdmin):
+    list_display = ('description', 'vlan', 'extra', 'direction', 'action')
+admin.site.register(Host, HostAdmin)
+admin.site.register(Vlan, VlanAdmin)
+admin.site.register(Rule, RuleAdmin)
+admin.site.register(Group)
+admin.site.register(Firewall)
--- a/firewall/fw.py
+++ b/firewall/fw.py
--- a/firewall/models.py
+++ b/firewall/models.py
+from django.forms import fields
 from django.db import models
+from django.contrib.auth.models import User
+from django.utils.translation import ugettext_lazy as _
+from django.core.exceptions import ValidationError
+import re
+#from south.modelsinspector import add_introspection_rules
+#add_introspection_rules([], ["^teszt.firewall.models.MACAddressField"])
+mac_re = re.compile(r'^([0-9a-fA-F]{2}([:-]?|$)){6}$')
+alfanum_re = re.compile(r'^[A-Za-z0-9_-]+$')
+domain_re = re.compile(r'^([A-Za-z0-9_-]\.?)+$')
+class MACAddressFormField(fields.RegexField):
+    default_error_messages = {
+        'invalid': _(u'Enter a valid MAC address.'),
+    }
+    def __init__(self, *args, **kwargs):
+        super(MACAddressFormField, self).__init__(mac_re, *args, **kwargs)
+class MACAddressField(models.Field):
+    empty_strings_allowed = False
+    def __init__(self, *args, **kwargs):
+        kwargs['max_length'] = 17
+        super(MACAddressField, self).__init__(*args, **kwargs)
+    def get_internal_type(self):
+        return "CharField"
+    def formfield(self, **kwargs):
+        defaults = {'form_class': MACAddressFormField}
+        defaults.update(kwargs)
+        return super(MACAddressField, self).formfield(**defaults)
+def val_alfanum(value):
+     if not alfanum_re.search(value):
+          raise ValidationError(u'%s - csak betut, kotojelet, alahuzast, szamot tartalmazhat!' % value)
+def val_domain(value):
+     if not domain_re.search(value):
+          raise ValidationError(u'%s - helytelen domain' % value)
+class Rule(models.Model):
+#     DIRECTION_CH=(('TOHOST', 1), ('FROMHOST', 0))
+     direction = models.BooleanField()
+     description = models.TextField(blank=True)
+     vlan = models.ForeignKey('Vlan')
+     extra = models.TextField(blank=True);
+     action = models.BooleanField(default=False)
+#     owner = models.ForeignKey(User)
+     def __unicode__(self):
+        return self.description
+class Vlan(models.Model):
+    vid = models.IntegerField(unique=True)
+    name = models.CharField(max_length=20, unique=True, validators=[val_alfanum])
+    prefix4 = models.IntegerField(default=16);
+    prefix6 = models.IntegerField(default=80);
+    interface = models.CharField(max_length=20, unique=True)
+    net4 = models.GenericIPAddressField(protocol='ipv4', unique=True)
+    net6 = models.GenericIPAddressField(protocol='ipv6', unique=True)
+    ipv4 = models.GenericIPAddressField(protocol='ipv4', unique=True)
+    ipv6 = models.GenericIPAddressField(protocol='ipv6', unique=True)
+    en_dst = models.ManyToManyField('self', symmetrical=False, blank=True, null=True)
+    description = models.TextField(blank=True)
+    comment = models.TextField(blank=True)
+    domain = models.TextField(blank=True, validators=[val_domain])
+    dhcp_pool = models.TextField(blank=True)
+    def __unicode__(self):
+        return self.name
+    def en_dst_vlan(self):
+        return self.en_dst.all()
+    def net_ipv6(self):
+	return self.net6 + "/" + str(self.prefix6)
+    def net_ipv4(self):
+	return self.net4 + "/" + str(self.prefix4)
+class Group(models.Model):
+    name = models.CharField(max_length=20, unique=True)
+    rules = models.ManyToManyField('Rule', symmetrical=False, blank=True, null=True)
+    def __unicode__(self):
+        return self.name
+class Host(models.Model):
+    hostname = models.CharField(max_length=20, unique=True, validators=[val_alfanum])
+    mac = MACAddressField(unique=True)
+    ipv4 = models.GenericIPAddressField(protocol='ipv4', unique=True)
+    pub_ipv4 = models.GenericIPAddressField(protocol='ipv4', unique=True, blank=True, null=True)
+    ipv6 = models.GenericIPAddressField(protocol='ipv6', unique=True)
+    description = models.TextField(blank=True)
+    comment = models.TextField(blank=True)
+    location = models.TextField(blank=True)
+    vlan = models.ForeignKey('Vlan')
+    owner = models.ForeignKey(User)
+    groups = models.ManyToManyField('Group', symmetrical=False, blank=True, null=True)
+    rules = models.ManyToManyField('Rule', symmetrical=False, blank=True, null=True)
+    def __unicode__(self):
+        return self.hostname
+    def groups_l(self):
+	retval = []
+	for grp in self.groups.all():
+		retval.append(grp.name)
+	return ', '.join(retval)
+    def rules_l(self):
+	retval = []
+	for rl in self.rules.all():
+		retval.append(rl.description)
+	return ', '.join(retval)
+class Firewall(models.Model):
+    name = models.CharField(max_length=20, unique=True)
+    rules = models.ManyToManyField('Rule', symmetrical=False, blank=True, null=True)
+    def __unicode__(self):
+        return self.name
-# Create your models here.
--- a/firewall/views.py
+++ b/firewall/views.py
-# Create your views here.
+from django.shortcuts import render_to_response
+from django.http import HttpResponse
+from django.shortcuts import render_to_response
+from teszt.firewall.models import *
+from teszt.firewall.fw import *
+def reload_firewall(request):
+	if request.user.is_authenticated():
+		if(request.user.is_superuser):
+			html = u"Be vagy jelentkezve es admin is vagy, kedves %s!" % request.user.username
+			try:
+				print "ipv4"
+				ipv4 = firewall()
+				ipv4.reload()
+				print "ipv6"
+				ipv6 = firewall(True)
+				ipv6.reload()
+				print "dns"
+				dns()
+				print "dhcp"
+				dhcp()
+				print "vege"
+			except:
+				html += "<br>nem sikerult :("
+		else:
+			html = u"Be vagy jelentkezve, csak nem vagy admin, kedves %s!" % request.user.username
+	else:
+		html = u"Nem vagy bejelentkezve, kedves ismeretlen!"
+	return HttpResponse(html)